vsftpd, which stands for "Very Secure FTP
Daemon",is an FTP server for Unix-like systems, including Linux. It is
licensed under the GNU General Public License. It supports IPv6 and SSL.

In July 2011, it was discovered that vsftpd
version 2.3.4 downloadable from the master site had been compromised.
Users logging into a compromised vsftpd-2.3.4 server may issue a ":)"
smileyface as the username and gain a command shell on port 6200.
This was not an issue of a security hole in vsftpd, instead, someone had
uploaded a different version of vsftpd which contained a backdoor. Since
then, the site was moved to Google App Engine.

exploit/unix/ftp/vsftpd_234_backdoor

This module exploits a malicious backdoor
that was added to the VSFTPD download archive. This backdoor was
introduced into the vsftpd-2.3.4.tar.gz archive between June 30th 2011
and July 1st 2011 according to the most recent information available.

Lab Notes

In this lab we will do the following:

Run an intense NMAP Scan on the Metasploitable
VM

Search for VSFTPD

Exploit the VSFTPD Daemon and obtain root.

Legal Disclaimer

As a condition of your use of this Web
site, you warrant to computersecuritystudent.com that you will not use
this Web site for any purpose that is unlawful or
that is prohibited by these terms, conditions, and notices.

In accordance with UCC § 2-316, this
product is provided with "no warranties, either express or implied." The
information contained is provided "as-is", with "no guarantee of
merchantability."

In addition, this is a teaching website
that does not condone malicious behavior of
any kind.

You are on notice, that continuing
and/or using this lab outside your "own" test environment
is considered malicious and is against the law.